BSI PD ISO/TR 21332:2021
$198.66
Health informatics. Cloud computing considerations for the security and privacy of health information systems
| Published By | Publication Date | Number of Pages |
| BSI | 2021 | 66 |
This document provides an overview of security and privacy considerations for Electronic Health Records (EHR) in a cloud computing service that users can leverage when selecting a service provider.
PDF Catalog
| PDF Pages | PDF Title |
|---|---|
| 2 | National foreword |
| 6 | Foreword |
| 7 | Introduction |
| 9 | 1 Scope 2 Normative references 3 Terms and definitions |
| 14 | 4 Abbreviated terms 5 Cloud computing 5.1 General 5.2 Overview of cloud computing |
| 16 | 5.3 Cloud computing roles and activities 5.4 Cloud capabilities types and cloud service categories |
| 17 | 5.5 Cloud deployment models |
| 19 | 5.6 Cloud computing information system security capabilities |
| 20 | 6 Considerations for health information in cloud computing environment 6.1 Overview |
| 22 | 6.2 Health information security 6.2.1 Overview of Teleworking Policies and Procedures 6.2.2 Telework and portable devices |
| 23 | 6.3 Information security policies 6.3.1 Overview 6.3.2 Information security and protection of PII and PHI |
| 24 | 6.3.3 Availability |
| 25 | 6.3.4 Cloud deployment models considerations 6.3.5 Audit trail and logs |
| 26 | 6.3.6 Cryptography and obfuscation |
| 27 | 6.3.7 Retention, backup, and deletion 6.3.8 Access control and multi-client segmentation |
| 29 | 6.3.9 Change management 6.3.10 Disaster recovery |
| 30 | 6.3.11 Testing and evaluation 6.3.12 Information management |
| 32 | Annex A (informative) Example guidance from the UK for selecting and risk managing cloud based digital health services |
| 38 | Annex B (informative) Detailed advice and guidance |
| 61 | Annex C (informative) Service classification recommendations |
| 63 | Bibliography |
